Hi Group, Wondering is there any latest document/article related to CFengine 3, which could cover the issues as mentioned in the following Book Chapter:
Book Title: Automating Linux and Unix System Administration Chapter Name: Configuring Systems with Cfengine (ByNate Campi &Kirk Bauer) Link: http://www.springerlink.com/content/p287583278n274p8/about/ I am interested to use CFengine for an integrated approach with a possible example scenario: Using a Vulnerability Assessment tool (Nessus or OpenVAS), there is a target host which have a vulnerable package installed and needs an upgrade. How can I invoke CFengine to automatically remedy that particular vulnerability by applying a latest patch. How can I define a CFengine policy (set of promises) for this? Secondly, a database using some default password and the particular node is susceptible to an attack Or there's an open port which could be targeted by an attacker .... How to I call CFengine (write a promise) to remedy such type of vulnerabilities? Any possible hints and/or examples would be highly appreciated. Regards -JanĀ
_______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
